1 Lessons from IPv6 Steven M. Bellovin

Slides:



Advertisements
Similar presentations
Introduction to IPv6 Presented by: Minal Mishra. Agenda IP Network Addressing IP Network Addressing Classful IP addressing Classful IP addressing Techniques.
Advertisements

IPv6 at NCAR 8/28/2002. Overview What is IPv6? What’s wrong with IPv4? Features of IPv6 IPv6 will soon be available at NCAR How to use IPv6.
IPv6 The New Internet Protocol Integrated Network Services Almerindo Graziano.
IPv6 Introduction What is IPv6 Purpose of IPv6 (Why we need it)Purpose of IPv6 IPv6 Addressing Architecture IPv6 Header ICMP v6 Neighbor Discovery (ND)
CPSC Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-
1 IPv6 Advantages May 2001 May 2001
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
EE 545 – BOGAZICI UNIVERSITY. Agenda Introduction to IP What happened IPv5 Disadvantages of IPv4 IPv6 Overview Benefits of IPv6 over IPv4 Questions -
IPv6 Internet Protocol Version Information management 2 Groep T Leuven – Information department 2/24 Internet Protocol Version 6 (IPv6)
1 IPv6. 2 Problem: 32-bit address space will be completely allocated by Solution: Design a new IP with a larger address space, called the IP version.
IPv4 vs. IPv6 Anne-Marie Ethier Andrei Iotici "This report was prepared for Professor L. Orozco- Barbosa in partial fulfillment of the requirements for.
IPv6 at NCAR 7/10/2003 Westnet conference Boulder, Colorado.
Network Layer IPv6 Slides were original prepared by Dr. Tatsuya Suda.
IP Version 6 Next generation IP Prof. P Venkataram ECE Dept. IISc.
COSC 541 Data and Computer Communications IPV6 OVERVIEW Professor:Mort Anvari Student: Fuqiang Chen Student ID: Date:Mar
IPv6 Network Security.
Understanding IPv6 Slide: 1 Lesson 1 Introduction to IPv6.
Security IPv4 vs. IPv6 Is there a difference? Greg Travis Indiana University
By Rod Lykins.  Background  Benefits  Security Advantages ◦ Address Space ◦ IPSec  Remaining Security Issues  Conclusion.
IPv6 and Overlays EE122 Introduction to Communication Networks Discussion Section.
Shivkumar Kalyanaraman Rensselaer Polytechnic Institute 1 ECSE-6600: Internet Protocols Exam 3 Time: 90 min (strictly enforced) Points: 50 YOUR NAME: Be.
TDC 375 Winter 2002John Kristoff1 Network Protocols IPv6.
Introduction to IPv6 NSS Wing,BSNL Mobile Services, Ernakulam 1.
IAB/IESG Recommendations on IPv6 Address Allocation Bob Hinden at RIPE Sept Brian Carpenter at ARIN Oct Alain Durand at APNIC Oct
1 IPv6 Address Management Rajiv Kumar. 2 Lecture Overview Introduction to IP Address Management Rationale for IPv6 IPv6 Addressing IPv6 Policies & Procedures.
بسم الله الرحمن الرحیم. Why ip V6 ip V4 Addressing Ip v4 :: 32-bits :: :: written in dotted decimal :: :: ::
IAB/IESG Recommendations on IPv6 Address Allocation Bob Hinden at RIPE Sept Brian Carpenter at ARIN Oct Alain Durand at APNIC Oct
Day15 IP Space/Setup. IP Suite of protocols –TCP –UDP –ICMP –GRE… Gives us many benefits –Routing of packets over internet –Fragmentation/Reassembly of.
Host Mobility for IP Networks CSCI 6704 Group Presentation presented by Ye Liang, ChongZhi Wang, XueHai Wang March 13, 2004.
What does it take to define an architecture? (Part 2) David D. Clark July, 2012.
Internet Addressing. When your computer is on the Internet, anything you do requires data to be transmitted and received. For example, when you visit.
Summary of Certification Process (part 1). IPv6 Client IPv6 packets inside IPv4 packets.
Brett Neely IP Next Generation. To boldly go where no network has gone before...
Module 3: Designing IP Addressing. Module Overview Designing an IPv4 Addressing Scheme Designing DHCP Implementation Designing DHCP Configuration Options.
IPv6 WORKING GROUP (IPNGWG) March 2001 Minneapolis IETF Bob Hinden / Nokia Steve Deering / Cisco Systems Co-Chairs.
IPv6 – What You Need To Know Tom Hollingsworth CCNP,CCVP,CCSP, MCSE.
Unrestricted Connection Manager MIF WG IETF 79, Beijing Gaétan Feige - Cisco Pierrick Seïté, France Telecom - Orange
Draft-chown-v6ops-campus-transition-00 Tim Chown v6ops WG, IETF 60, San Diego, August 2, 2004.
CIT 384: Network AdministrationSlide #1 CIT 384: Network Administration IPv6.
© 2009 Pearson Education Inc., Upper Saddle River, NJ. All rights reserved. © The McGraw-Hill Companies, Inc. IP version 6 Asst. Prof. Chaiporn Jaikaeo,
OpenAFS in a multihomed universe Jeffrey Altman Derrick Brashear.
IPv6. Content  History  IPv4 Downfall  IPv6 Features  IPv6 Addresses  Changes from IPv4  IPv6 Headers/Frames/Packets  Autoconfiguration  Commands.
Russ Housley IETF Chair Internet2 Spring Member Meeting 28 April 2009 Successful Protocol Development.
(c) University of Technology, Sydney Firewall Architectures.
Draft-vandevelde-v6ops-addcon-00.txt IPv6 Unicast Address Assignment Considerations Gunter Van de Velde (editor) Tim Chown Ciprian Popoviciu IETF 65, March.
IPv4/IPv6, HIP, E.164, URI/URN/URL, DOI Overviews Sep Seungjae Lee
Juan Ortega 8/13/09 NTS300. “The problem with version 5 relates to an experimental TCP/IP protocol called the Internet Stream Protocol, Version 2, originally.
Introduction to IPv6 ECE4110. Problems with IPv4 32-bit addresses give about 4,000,000 addresses IPv4 Addresses WILL run out at some point – Some predicted.
Lesson 2 Introduction to IPv6.
IPv6 Site-Local Discussion Bob Hinden & Margaret Wasserman IETF 56 San Francisco March 2003.
IPv6 Introduction Joe zhao SW2 Great China R&D Center ZyXEL Communications, Inc.
Guidance of Using Unique Local Addresses draft-liu-v6ops-ula-usage-analysis-05 draft-liu-v6ops-ula-usage-analysis-05 Bing Liu(speaker), Sheng Jiang, Cameron.
IPv 邱文揚 Joseph 李家福 Frank. Introduction The scale of IPv4 Internet has become far larger than one could ever imagine when designing.
1 ipv6-node-02.PPT/ 18 November 2002 / John Loughney IETF 55 IPv6 Working Group IPv6 Node Requirements draft-ietf-ipv6-node-requirements-02.txt John Loughney.
Firewalls A brief introduction to firewalls. What does a Firewall do? Firewalls are essential tools in managing and controlling network traffic Firewalls.
1 Computer Networks IPv6. 2 Motivation The primary motivation from changing the IP datagram format is to increase the size of the useable address space.
Site Multihoming for IPv6 Brian Carpenter IBM TERENA Networking Conference, Poznan, 2005.
Trends in IPv6 Bill Cerveny Joint-Techs Workshop - Batavia, IL July 17, 2007.
IPv6 Security Issues Georgios Koutepas, NTUA IPv6 Technology and Advanced Services Oct.19, 2004.
1 Internet Protocol, Version 6 (IPv6) Special Topics in Computer Sciences Second Term 1433/1434 H Dr. Loai Bani Melhim.
IPv6 Working Group IETF55 Atlanta November URL for Thermometer
Lecture 13 IP V4 & IP V6. Figure Protocols at network layer.
1 Security and IPv6 Steven M. Bellovin
Next Generation: Internet Protocol, Version 6 (IPv6) RFC 2460
27th September 2016 IPv6 27th September 2016
ECSE-6600: Internet Protocols
Key concepts covered in Midterm III
Internet Protocol, Version 6 (IPv6)
Computer Networks Protocols
IPv6 Current version of the Internet Protocol is Version 4 (v4)
Presentation transcript:

1 Lessons from IPv6 Steven M. Bellovin

2 History ● Effort started in ● Original primary purpose: more IP addresses ● Several competing proposals

3 Context ● Internet security starting to be noticed – Note: security ≠ cryptography! ● No deployed autoconfiguration – DHCP dates to 1993 ● No NAT; first RFC was 1994 ● OSI vs TCP/IP wars ● Routing table size an issue

4 Basic Decisions ● Do not change basic semantic model of IP; keep it simple – Slightly modified over time... ● Support other things seen as necessary – Mobility – Renumbering – Multicast ● Add security: IPsec ● Do not change TCP

5 What Happened ● Near-stalemate in the IETF among different proposals – IPng area and directorate formed ● Arguments over cryptography (vs. U.S. export laws) ● Routing table size was seen as not a primary issue – Use CIDR and easy renumbering ● Engineering took a lot longer than expected

6 Second System Effect ● Many features were added to IPv6 ● Scoped addresses – Required changes to the socket API ● Neighbor Discovery replaced ARP – Includes basic autoconfiguration ● Flow labels (but usage wasn't specified) ● Early decision on stateless autoconfiguration froze part of the address format

7 The Claims for V6 ● Bigger addresses – True, but doesn't attract end users ● Autoconfiguration – We now have DHCP for client configuration ● More secure – IPsec exists for IPv4, too

8 Engineering is Hard ● Some features were much more complex than people thought – Neighbor Discovery couldn't be secured with IPsec – Site-local addresses interacted poorly with the DNS ● Finishing the design took a lot longer than expected ● Renumbering is easier, but still not easy; there are too many addresses in configuration files, access control lists, etc. ● Multihoming is still unsolved

9 What Happened? ● The opportunity attracted too many feature creatures ● During that time, IPv4 didn't stop evolving – Many of the putative advantages of IPv6 became part of IPv4 ● Tighter allocation controls by the RIRs helped ● NATs solved a large part of the address space crunch

10 The World Changed under IPv6 ● Mobility hasn't been that important at the IP layer – Layer 2 mobility often works well: access points, cell phones, etc ● Firewalls and VPNs have eroded much of the application base for mobility ● ISP-based multihoming has become increasingly important – and it was explicitly ignored in the IPv6 design

11 What are the Lessons? ● The devil is in the details – you generally don't know what will work, or how well it will work, until you've built it ● Understand what the real issues are – IPv6 got big addresses right; it didn't understand multihoming and looked too much at mobility ● Understand what will motivate users to adopt it – NAT made big addresses irrelevant for most end users

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.